8f3436e00fef0de618900456f7f91380643a28b1d14e2d8ced0134a98deb4b92

Analysis

max time kernel
166s
max time network
140s
platform
android_x86
resource
android-x86-arm-20240611.1-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
submitted
11/06/2024, 22:23

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

TencentUnipay.apk
Size

1.0MB
MD5

394d91ba9608c3ffb2e575265812a3c8
SHA1

a768dc781bc08fad9516c14cfd30514e18ada4aa
SHA256

864a938c91a33009caa71fc6d98a3e51b3725fe137f69dd0a3c38c910e04a545
SHA512

e2143310fbfc31f9d7fe382ab6c88b348c46b059e1da615b4ecac8a7431ebfcaa9cad4abe0fb77e265cb1ebe8fd2e4609483c0f6d84e52ec982dee01dc3e579c
SSDEEP

24576:+VXOwlnvE/kY34P1eR6wSkzNcDT3JyIbPWX1ImF6jAdeEndgBE2txin04GyoGDfR:+VXrlnvhaSkRST5DOlRF6jANdgBJtxiP

Score

7^/10

discovery impact

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.tencent.unipay

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tencent.unipay

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.tencent.unipay

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.tencent.unipay

Checks CPU information 2 TTPs 3 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.tencent.unipay
File opened for read	/proc/cpuinfo	/system/bin/cat /proc/cpuinfo
File opened for read	/proc/cpuinfo	/system/bin/cat /proc/cpuinfo

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.tencent.unipay

com.tencent.unipay
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4203
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
  2⤵
  PID:4353
- /system/bin/cat /proc/cpuinfo
  2⤵
  - Checks CPU information
  PID:4372
- /system/bin/cat /proc/cpuinfo
  2⤵
  - Checks CPU information
  PID:4390

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tencent.unipay/databases/TencentUnipayIPList.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.tencent.unipay/databases/TencentUnipayIPList.db-journal

Filesize
512B

MD5
86495aff1941d5be75dda8f00e56f1d2

SHA1
63cd6e9a940e8cc412708c72a0cc5c68708ad2ae

SHA256
ab1a59c4ccc0045dc019ce6eb17d5a253394a8c746e87a279f20d7ade82da1d6

SHA512
d9fb5acd6c823318dab4e9641637d5e83362155b4fcbfdc56176b609c6ae66cf02ecabcc123144e4d079fb310492a7bcafeaf9c6ee227bc309156f0539ed264d

Download Submit
/data/data/com.tencent.unipay/databases/TencentUnipayIPList.db-wal

Filesize
60KB

MD5
78a5296c6f6e8c011179ce97a2ff1021

SHA1
184bc735d67a824e2ea76b5a95d64cdcf4a0b94c

SHA256
b1788ee7bf2928d197bf1770b57920e92d33d73d33b2c9f10865d4949506afda

SHA512
084d56ec68f61b8612048f062df7207f821056187e13c26a71a114b36ff870b29b925fdc764e84650d7a6ea6b898b4a7a08117936150b6452ff8f509b4520246

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db

Filesize
20KB

MD5
3aba667064bf7267f62c9ba70c2be896

SHA1
0962d901219a8b99cd93a398d8d4e3cd12406a68

SHA256
d33025c0a5f255c64afbfc2077210bd148858c7e43e6c200a0a78cadf76f995d

SHA512
75092b9d0cb176d0b815b0a07265a188c517d47df37076376aece33af6dcc79bb1e2fa4d1ee08f9eb7d719ff9072c94fc522402d6bc0311dc1e167578abd6e2b

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db

Filesize
20KB

MD5
02b1b8bafb055655b1c1f2dfda7af94e

SHA1
6feec8b8ced538b9f28b71cb2faefb6cefcdd9f7

SHA256
71793951c7152bc7a291bb85b537dcc5387f73e2f7ef370cc73d16de70047e90

SHA512
2cf46e79e808081cdb0438d89acad6e4bbfa9cb1704bba1f578b8cd8faf4fab6773156dbb04720742f16b3a91bb7c06de01258dac23317889fb68dd77cf97c94

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db

Filesize
20KB

MD5
f9f548d2603b61e46d481d36e6d82335

SHA1
c7c3c94a947ef9827abc0370f7d59b10c79dbd47

SHA256
dd7f2c27b7494fe037e71a907e027471157be1d627897ec6f3a8c536351e8944

SHA512
e75beace4f1e6c45011730698cc97585cc2db26076c08146c62af34f8a4e40e954dc7c1d8ad8d7b3b8e543943b540025bd15dd530491a653ae1108621fe25ba4

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db

Filesize
20KB

MD5
3c192e0ed0b612843909b64e1a4782d1

SHA1
fd1c64fd67271c3dd7625abc3fca12c84af33665

SHA256
0f1613c7d686e4a2021ed8a13a5e80b42a8d4f213f0534c267e6d7bba28ac474

SHA512
95735328ecae4168fd37f690a48fecf83334f63831238e1b5102153a14c67338d1e240852d4bfc17066bb8194e9dd48e31de281f7ff5372dd870964675c23e58

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db

Filesize
20KB

MD5
0ae2545f7ddfac29015634952ed29876

SHA1
b4bd9525cbe8888c9dc3c545f5ecc512aa5f9264

SHA256
1c4e33aa796717468a84f2d546874ec14a425ec8fdc32c301828010c6a969471

SHA512
53b857760b0430dc56f801ea3299b8cb9bd6e46122c287d88c7fdee71331233b171475a4906c7713754fcc1408be0df36214e8fc74b5bebec13ec9ff5c0a4f15

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db

Filesize
40KB

MD5
8658b7e4aad90873feab27bb63aef078

SHA1
bf67ed6496d4f45aa8971b8d4839d5f2f0f670e4

SHA256
d471f54c746accafbfa33ae520d4e382276ebff6aaded608e8951f4741f2342f

SHA512
f698c06ea2a578d0a056503b252f16ae5d50be1825409fcf97408aebc82a3e4f513a31b25971387f64ad61679c5970b00f2dde6a610731b6465307bec858e633

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db-journal

Filesize
512B

MD5
4b647991f5c4310cb7cb21736d2c19a6

SHA1
d4d4646e12b3013e1fd2054aa470680088a1d041

SHA256
eee4347248442dbabcf99783f289a785180dbe77ba8782b1227ddfa00a059351

SHA512
60ed064e74e17fc8223ef7a8dc2a29fa426915f47245bfe6642b0750525ea3b1edd2e8b52f83e2e05c023330fb6b0d274b7a736459fddfbe41d6f29dda55fe38

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db-wal

Filesize
16KB

MD5
e26048906d3fcbe9d233db01b41315cd

SHA1
145756687f794f3333ae26cf181607c178b0a3f9

SHA256
14a6da62e343e8971cd1bc55b8bcd7eabafd1c471780fceacec78b5020cdeafe

SHA512
7ddff93bac258d45ea0ef9ca13547ca17f19f2c20dfed83e026cb01e15f099efb35d51f6f0bb430d8b045ef7bb561571cd9fa8de02343faec318b763115b560a

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db-wal

Filesize
16KB

MD5
d63b8167522453c78954a278c9d3e4ca

SHA1
e8ad1833424e3c7bcb7e244808d0ec9636777b1f

SHA256
a615ed9a3c3396b5075b8b6bf4d13c3fe23efa80b184f239cebcd3720b6d3e1c

SHA512
3cc48cabfc9dfdc9436ab77fe2577b3201c2ee9498433367ba4dfa159550b165fb69a5f4910dd3b23f6dfed246e82bc25f052f9e42a25a55665429b9ad9fe361

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db-wal

Filesize
8KB

MD5
2869fc4879838cb2c8f74b2a3329dd29

SHA1
e943ff30f3ef7181ef76d1a62a0ad85148f3b571

SHA256
60b3675f0a08e8ba6d7e24a0303e657584291871af0014d95e2a63fd2a8ceec1

SHA512
8a4d5d4d592c4169d53eff27405c9033db0d46e1c83c2f361fb4492306ca1fd8f4ce679bd1024ed7a76ac9ec44fc4b9dc0c4859eab3ac8083fe0cd5cd28d4419

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db-wal

Filesize
12KB

MD5
546846eb2fbb0c98169f13d0afadb682

SHA1
edf2c186be856e0becfb13cc03ec01c8782f079b

SHA256
01593fd357e048a9ca75c8974de5417ce0374b446819a2a5aef20b205ee2f0e0

SHA512
391baa7c25d57b371d4110c3908966020b55617879bfd81f4c5fdf3427523444fdcdb6968835e933250d95353891d38d736e6ae445d151ccd1a207a7ddc9aba6

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db-wal

Filesize
16KB

MD5
fbace09493ed904b4ab7147cfb2b1ac6

SHA1
4c615840c733940a092d1de91867423e35915939

SHA256
64371342735565333c13b0c6755e179258e11fcf1e7db339fe5db4d4a69daa2b

SHA512
6b0739a73b117718e9246dd95fdce32f0d3fb8da657a65f439bd513b65b6bd0c407377fb0296c1aa517a9471bd9a029b6422998eacf3f3ab21a9d1f9f226d1fc

Download Submit
/data/data/com.tencent.unipay/databases/beacon_db-wal

Filesize
52KB

MD5
cc988fe238cbc4697b7db0fe922c1359

SHA1
8e474e6b5495ac2fafe77bdad927bf850fac7b9c

SHA256
d8b134bf6cc1d603ccdca0ae1539f17ec94fb0a769e899739fb6c1c6690f021a

SHA512
7faea7489ef03c11542cad42babc8e86ea8e168df8550c66bc3b4827fe86dd85194c5d5978d0271a5814c978c887b44a0a7dfe71b2ec5950e56b338a81228ebb

Download Submit
/data/data/com.tencent.unipay/databases/eup_db

Filesize
44KB

MD5
ea25a44c5f7c3d2763b0cec8ea033906

SHA1
d4fd1e205f7ea89a879d8ac5bd8b0251da78f8a3

SHA256
f0319d89aea03a0cc6295b5a43c784cc4f91954e141c520c2b9e8070f9171837

SHA512
8f13640208499d841e6c0007909d2bab4f14e33ba20cc6e6440c429a7245bf352cc3fe9bd0538033668348415fbc20c9807fcee7201dba48e1070f56ab859cdd

Download Submit
/data/data/com.tencent.unipay/databases/eup_db

Filesize
36KB

MD5
0bed86d41e2b0667d0ceeddffac441f2

SHA1
ee223ea7cca90cb1416d953a078565c0fa5afbc4

SHA256
2551d6793361df7ded7c9776521b286a2e0b88ec6b47f7755d89dc32efbab9ea

SHA512
2b35b3e46993bbeb267649f4af9d936cefa60338b89f205d592dcb5f693fb8e8b683edaf5f97e0c9e688a987891e2130f66b6c768383cf2f74f705a749d30ebe

Download Submit
/data/data/com.tencent.unipay/databases/eup_db

Filesize
16KB

MD5
2c8d12f0aeac8ce5a707c9d4a5487f8d

SHA1
48b59593ff7e5c1a5fd8b9ffe78092b3757ee7af

SHA256
3b1701d6e4d0018efb6722d3573201be1b69304d9ae2456d26726dc3c5e582f4

SHA512
3b599fd2c6209f0bb27fc1ae46ff820e2394a5ef23ee6bf309ddc718cdb7ab9aee9b5a56c3fc07265d4d066171b2dcf665b245b233ba84ae9d09a47fdde7ce30

Download Submit
/data/data/com.tencent.unipay/databases/eup_db

Filesize
16KB

MD5
ed6df175fc92f386b808e8fc8c2e886a

SHA1
00c332df09b1742d061e81de9970290c74aa9a52

SHA256
57ba2d558f314b32a0261a2204185d3c533c286efc8e7aac1e5535f075129a1e

SHA512
a0c004fa1f29c8e8e7bbd5ef727ed65a3e08ac14cff8a9f65ced63a2b96a9de369a26cc06b78a3ab145aba92463993434708150a1e1603382c7a18fcba4323ba

Download Submit
/data/data/com.tencent.unipay/databases/eup_db

Filesize
16KB

MD5
9950c312c49abde3fde4d481125450c1

SHA1
3e6531f085e6b66720cc8740163aedfd42f4366d

SHA256
0a6a87da8cda4d9b6da307dcd778ac2babd1dda6a6be3bb5c7ccb98bda60f5cf

SHA512
072fd3f62513f7c0c45ec1d3caacf91b55a795105688dc276bba8bd7834c5a016ef7ddbbe52f753c1212912c44773dc9a40431f9a5be95af83c62fc690f367d0

Download Submit
/data/data/com.tencent.unipay/databases/eup_db

Filesize
44KB

MD5
803585e0aaed65f5c4273abb2b80d43f

SHA1
182adfdc27766a972ccd3445aa5cd838c280c6d8

SHA256
6279e3d90e3559fb747151ddfa2ace75ff8c491d72e85d0b603b3741f7c19972

SHA512
7b01d6afc3cf46cd7292008efa0bfa96ca025bb5158af5ff57eb20a9a6a9e325ab1f0dca38f636e2467055a63909f417667fd39fad81ab658be4a0846b5761e9

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-journal

Filesize
512B

MD5
4fa9d7b4c606851206168f892537c9fb

SHA1
e7900a95b6734f39badba564e6e29148db530a75

SHA256
8c6b2362dbc119bcacfa1918ee247ede0d121e5800714abe4fad71a44fb3a7ef

SHA512
061b5db90117f6bf7641fdb56657a44668c7b9c7bef8ae0a4dbe6b7c4d9c59db3135faaa4cf4c1f1dacd4b0eba0e00dd1d6b40e4fe693313a00836d2600b4b67

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-wal

Filesize
4KB

MD5
7c7a302b78c3e2b22b170d3118dff1c3

SHA1
756b00da568efb6e784927061ccbac684fe8b196

SHA256
5ef6d491ed456b8154caaa7284e899e283e8aacfbc019b765d7542ea0a8e7094

SHA512
a626ba832abc15132fd25244cd324efb3d11da29d8e036ecaee93300541039321b1b90642532faa11599f74e943aec4db1b73e8f0f8ae7f11d341573e97edcb3

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-wal

Filesize
4KB

MD5
7cfba2f69d11b3c9defe56c50001d51e

SHA1
0247fa319097981c46766475a5727a9f148fe9a8

SHA256
dd831d926774fa4c11de0e0c37974dd5943e6b4834fa0312f9efc83a811b7465

SHA512
70976917d757fe254cc262126ca90b77ff594b42bf69d4424da0e1b96eca7a648c005271a5d2947b61cbf2e3e2577ebf5cdc1520a571ab4c9d404493237a9def

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-wal

Filesize
4KB

MD5
15026f6f1396d1c897f3533921c87d33

SHA1
fa89ca26b054bdef568cd2be22699bcf91215bfb

SHA256
ecd7bd2ba04b9a198eccd9e6c052161b0562c803922f8beca3b86f98bf8623c2

SHA512
e57c23964bad636defbd879269b0a8934647415e48415350260ce4040d630ef9e4748eaee6f78170910eea89bb86c29c5873f1f8ee724efe0938876f95a2f7ab

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-wal

Filesize
8KB

MD5
ad1ac983f62e62a3fd326a601d71c6c3

SHA1
87aaa8766d6c95f4e815dbee52f6a9eee8c884f2

SHA256
0953c59c1f39eb12883982fdad04e2f7475ac2a1886a6c39b01e5a466797ea90

SHA512
20fd32080b71c346f92098a1f3bb4984e7273b7049e0ea5b8f287c8949ea7b0c0bd026c1567f4532bfc6e9d89e01a9da96dbb8e281cf6e26c91c77706f388c90

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-wal

Filesize
8KB

MD5
3bcbeda277af2c5b4ded43958b748dff

SHA1
d97bcd22fbea7c8781d5f8ce9c3b5b3c7d2e43ba

SHA256
557070558e3d58690f87f7e9ca33e12af0a347ca4e07cff88907828ade515b4a

SHA512
0da13e5eaeedf28d49ee9966c197c3d6a0329d97a6c97bf8b6fe32f1aac476e56b58cf6feffd2ed992695af9c90af91a9a72f543f66855601ace428e8b0bc0b8

Download Submit
/data/data/com.tencent.unipay/databases/eup_db-wal

Filesize
56KB

MD5
314e846c4bb5432a3dfcbb0faccc13cf

SHA1
7492f549b4f178b640e475e9906f187aae85e44a

SHA256
b29c86bfdd0655df5dde010e500f3854016b27526a08ae951f045568121d55d4

SHA512
f9d3041466953b4d81d5e5be9d038478783c2d91d2fe046bcbbe00e698452670ce458afe367d9c3b3874d7a434d1a5f224d3d516adc69303e6c2c98919d9b031

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads